Skip to content

Commit

Permalink
Update docs/source/en/tutorials/secure_code_execution.mdx
Browse files Browse the repository at this point in the history 
Co-authored-by: Albert Villanova del Moral <8515462+albertvillanova@users.noreply.github.com>
  • Loading branch information
@aymeric-roucher @albertvillanova
aymeric-roucher and albertvillanova authored Feb 24, 2025
1 parent b20adc4 commit 5dbe9d8
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion docs/source/en/tutorials/secure_code_execution.mdx
View file
Original file line number Diff line number Diff line change
Expand Up @@ -60,7 +60,7 @@ As a result, this interpreter is safer. We have used it on a diversity of use ca

However, this solution is certainly not watertight, as no local python sandbox can really be: one could imagine occasions where LLMs fine-tuned for malignant actions could still hurt your environment.

For instance if you've allowed an innocuous package like `Pillow` to process images, the LLM could generate thousands of saves of images to bloat your hard drive.
For instance, if you have allowed an innocuous package like `Pillow` to process images, the LLM could generate thousands of image saves to bloat your hard drive.
Other examples of attacks can be found [here](https://gynvael.coldwind.pl/n/python_sandbox_escape).

Running these targeted malicious code snippet require a supply chain attack, meaning the LLM you use has been intoxicated.
Expand Down

0 comments on commit 5dbe9d8

Please sign in to comment.